Exchange – Certificate Invalid ‘Revocation Check Failed’
KB ID 0001121 Problem When you check the status of a certificate in Exchange and it it displayed at ‘Invalid’ and the details show that the revocation check has failed. Solution This can happen if your certificate CA has its CRL or OCSP information setup incorrectly, or the Exchange sever simply cannot access them to verify the validity of the certificate. If you are using your own CA the correct way to fix the problem is...
Event ID 36888
KB ID 0000634 Problem This was driving me nuts on my Windows 7 x64 Laptop. Log Name: System Source: Schannel Event ID: 36888 Task Category: None Level: Error User: SYSTEM Description: The following fatal alert was generated: 10. The internal error state is 10. I was getting a dozen of these an hour! Solution This error is caused (from what I can gather) by an error in certificate negotiation, your machine is trying to initiate...
Event ID 4107
KB ID 0000304 Problem Event ID 4107 Failed extract of third-party root list from auto update cab at: <Microsoft URL>with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. There’s a lot of info on this error out there in forums, and 99% of it had nothing to do with my problem. Its basically a certificate error, to get to the...
Event ID 53 – ‘The public key does not meet the minimum size required by the specified certificate template’
KB ID 0000967 Problem I’ve been doing a lot of PKI work over the last few days, testing device enrollment and NDES etc, and came across this problem being logged on my issuing/subordinate CA server; Log Name: Application Source: Microsoft-Windows-CertificationAuthority Event ID: 53 Task Category: None Level: Warning Keywords: User: SYSTEM Description: Active Directory Certificate Services denied request 35 because The public...
Event ID 6 and 13
KB ID 0000473 Problem Event ID 6 Source: Microsoft-Windows-CertificateServicesClient-AutoEnrollment Description: Automatic certificate enrollment for local system failed (0x800706ba) The RPC server is unavailable. Event ID 13 Source: Microsoft-Windows-CertificateServicesClient-CertEnroll Description: Certificate enrollment for Local system failed to enroll for a DomainController certificate with request ID N/A from {hostname}{name...